SANSFIRE 2017

Espionage, Influence Operations and Political Breaches: What Do the High Profile Attacks Teach Us About Enterprise Security

John Bambenek, ISC Handler

Tuesday, July 25th, 8:15pm - 9:15pm

The last 12 months have been filled with news of high-profile political targets being subjected to nation-state attacks. Stolen data is being used by non-friendly adversaries to manipulate and influence public opinion. It is easy to assume that skilled attackers are only interested in high-value targets, the reality is this is very much not the case. In a world of high-profile espionage attacks there are important lessons for enterprises to learn about their own security and what they should be doing.

This talk will cover the tactics adversarial actors have used to establish their foothold in their victims and the similarity those same tactics have to more traditional cybercriminal actors. The surprising reality is that most of the techniques involve social engineering where had the victims known what to look for, they‚d have bene able to protect themselves. This talk will also cover how data was exfiltrated and detection strategies to bring to enterprises to know if they have data leakage occurring that requires response.

Lastly, adversaries can and do engage in deception. The advent of defensive deception has also provided promising possibilities to protect enterprises (and high-value targets).

Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.

Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.

Downloads

Share

"I have never seen such high quality training, distilled to a perfected message, and compressed into a timeframe that any organization should willingly commit employee time to taking as a risk reduction strategy."- Jim Richards III